Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2019/08/27 12:0 a.m.26 views

Cisco TelePresence Conductor REST API Server-Side Request Forgery Vulnerability

According to its self-reported version number, remote Cisco TelePresence Conductor device is affected by a server-side request forgery vulnerability which could allow an authenticated, remote attacker to trigger an HTTP request from an affected server to an arbitrary host. Note that an attacker...

5CVSS5.6AI score0.02125EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2015/06/30 12:0 a.m.9 views

The vulnerability of the microprogramming software of the Cisco TelePresence Conductor conference call control device allows a intruder to gain access to the device.

The vulnerability of the control interface for microprogramming-based conference communication devices like Cisco TelePresence Conductor is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to gain access to the device using a...

10CVSS5.5AI score0.04341EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/03/20 12:0 a.m.39 views

Cisco TelePresence Conductor Login Security Bypass Vulnerability

According to its self-reported version number, the Cisco TelePresence Conductor on the remote host contains an vulnerability due to inadequate validation of parameters passed during the login process. A remote attacker, using a crafted request and knowledge of a valid user name, can bypass...

10CVSS5.6AI score0.04341EPSS
Exploits0References3
CVE
CVE
added 2015/03/13 1:0 a.m.65 views

CVE-2015-0652

CVE-2015-0652 affects Cisco TelePresence VCS, Cisco Expressway (before X8.2) and Cisco TelePresence Conductor (before XC2.4). The SDP packet handler vulnerability allows a remote, unauthenticated attacker to cause a denial of service (mishandled exception and device reload) via a crafted SDP medi...

7.8CVSS6.6AI score0.01895EPSS
Exploits0References2Affected Software3
Tenable Nessus
Tenable Nessus
added 2015/02/18 12:0 a.m.103 views

Cisco TelePresence Conductor GNU glibc gethostbyname Function Buffer Overflow Vulnerability (GHOST)

According to its self-reported version number, the Cisco TelePresence Conductor remote device is affected by a heap-based buffer overflow vulnerability in the GNU C Library glibc due to improperly validating user-supplied input to the nsshostnamedigitsdots, gethostbyname, and gethostbyname2...

10CVSS7.9AI score0.94859EPSS
Exploits29References4
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.291 views

Cisco TelePresence Conductor Bash Remote Code Execution (Shellshock)

According to its self-reported version number, remote Cisco TelePresence Conductor device is affected by a command injection vulnerability in GNU Bash known as Shellshock. The vulnerability is due to the processing of trailing strings after function definitions in the values of environment...

10CVSS8.2AI score0.99999EPSS
Exploits158References10
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.34 views

Cisco TelePresence Conductor Default Credentials (Web UI)

It is possible to log into the remote Cisco TelePresence Conductor installation by providing the default credentials. A remote, unauthenticated attacker can exploit this to gain administrative control. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

5.6AI score
Exploits0
Rows per page
Query Builder